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DETAILED ACTION 

1 . This action is issued in response to applicant filed request for continued 
examination (RCE) on 06/08/2009. 

2. Claims 1, 9, 15, 17, and 18 have been amended. No claims were added. No 
claims were canceled. 

3. Claims 1 - 18 are pending in this application. 

Response to Arguments 

4. Applicant's arguments with respect to amended claims 1 , and 9 have been 
considered but are moot in view of the new ground(s) of rejection. 

Continued Examination Under 37 CFR 1.114 

5. A request for continued examination under 37 CFR 1.114, including the fee set 
forth in 37 CFR 1 .1 7(e), was filed in this application after final rejection. Since this 
application is eligible for continued examination under 37 CFR 1.114, and the fee set 
forth in 37 CFR 1 .17(e) has been timely paid, the finality of the previous Office action 
has been withdrawn pursuant to 37 CFR 1.114. Applicant's submission filed on 

10/1 1/2006 has been entered. 

Claim Rejections - 35 USC §112 

6. Claims 15 - 18 are rejected under 35 U.S.C. 112, first paragraph, as failing to 
comply with the written description requirement. The claim(s) contains subject matter 
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which was not described in the specification in such a way as to reasonably convey to 
one skilled in the relevant art that the inventor(s), at the time the application was filed, 
had possession of the claimed invention. The limitation including: "wherein the place- 
holder is relevant to the rule" recited in claims 15, 17, and 18 is not supported in the 
specification. The examiner notes that applicant's remarks state that support of the 
amended limitation can be found in Page 15, lines 34- page 16, line 2. However, the 
passage cited by applicant and the rest of the specification only discloses that the 
place-holder corresponds to the ISP address. 

Claim Rejections - 35 USC § 102 

7. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 1 02 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

8. Claims 15 - 18 are rejected under 35 U.S.C. 102(b) as being anticipated by Coss 
et al. (Coss hereinafter) (US Patent No. 6,170,012 B1). 

Regarding Claim 15, Coss discloses a network data processing device, 
comprising: 

a network data processing module (Col. 3, lines 20 - 22, Coss); and 
a management module coupled to said network data processing module, said 
management module comprising a first memory containing a first table (Fig. 3, Col. 3 
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and 4, lines 66 - 67 and 1 ; respectively, Coss), said first table containing primary 
identifiers associated with at least one parameterized rule (Col.4, lines 1 - 6, Coss) for 
providing direction to said network data processing module when one or more of said 
primary identifiers and said at least one parameterized rule are associated with at least 
one parameter value (Col.4, lines 1 - 6, "... designations of source and destination 
hosts, a designation of special service which can be called for in a packet..."; Coss 1 ); 

wherein said network data processing module, in response to receiving said 
direction, manages network data according to said direction (Col.4, lines 22 - 26, Coss); 
and 

wherein said at least one parameterized rule is specified according to a string of 
characters containing a place-holder for each parameter of said parameterized rule that 
is not statically defined (Col. 4, lines 15 - 21 , "When a category provided for in the rule 
table is irrelevant in a certain rule, the corresponding table entry can be marked as a 
'wild card.' This can apply to any one or any combination of categories. In Fig. 3, and 
elsewhere, an asterisk (*) is used for wild card entries. 'FTP' stands for 'file transfer 
protocol'", also note that a "wild card" is a symbol that can represent one or a set of 
other characters. A common wild-card character is the asterisk (*). For example, the 
disk command DELETE L* would cause deletion of files LONG, LAME, LIMB. The 
examiner interprets the wild card "*" as the string of characters containing a place 
holder for each parameter... that is not statically defined, since the wild card "*" 
represents the character/s and places/positions of a dynamic/changing/non-static rule), 

1 Coss discloses dynamic rules which values, such as, host, can be modified; which corresponds to a 



Application/Control Number: 1 0/51 1 ,898 Page 5 

Art Unit: 2162 

wherein the place-holder is relevant to the rule (Col. 4, lines 15-21, wherein as shown 
in Fig. 3, for example: "*" corresponds to "DEST. HOST" of rule 20, Coss). 

Regarding Claim 16, Coss discloses a device, said management module further 
comprising a second memory containing a second table, said second table containing 
secondary identifiers associated with at least one of said primary identifiers and one or 
more respective parameter values (Fig. 3 and 4, Col. 5, lines 51 - 57; wherein the rule 
no. in table of Fig. 4 corresponds to rule no. in table of Fig. 5, Coss). 

Regarding Claim 17, Coss discloses a method of processing network data, 
comprising: 

storing as entries in a first table, primary identifiers, each with one or more 
associated parameterized rules (Fig. 3, Col. 3 and 4, lines 66 - 67 and 1 ; respectively, 
Coss); 

receiving data comprising at least one parameter value (Col. 4, lines 8-11 and 
26 - 29, Coss); and 

making a determination whether said parameter value can be associated with an 
existing one of the entries in said first table (Col. 4, lines 22 - 29, Coss); 

when the determination is affirmative, making a combination of said parameter 
value and said associated parameterized rules, and communicating said combination to 
a network data processing module so as to direct the management of network data by 



parameterizable form as claimed (Col. 2, lines 37-41, Coss). 
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said network data processing module (Col. 5, lines 35 - 48; wherein the step of caching 
the results of applying the rule set to a packet of a give network session corresponds to 
the step of making a combination of said parameter value and said associated 
parameterized rules as claimed, Coss); 

wherein each of said associated parameterized rules is specified according to a 
string of characters containing a place-holder for each parameter of said associated 
parameterized rule that is not statically defined (Col. 4, lines 15 - 21 , "When a category 
provided for in the rule table is irrelevant in a certain rule, the corresponding table entry 
can be marked as a 'wild card.' This can apply to any one or any combination of 
categories. In Fig. 3, and elsewhere, an asterisk (*) is used for wild card entries. 'FTP' 
stands for 'file transfer protocol'", also note that a "wild card" is a symbol that can 
represent one or a set of other characters. A common wild-card character is the asterisk 
(*). For example, the disk command DELETE L* would cause deletion of files LONG, 
LAME, LIMB. The examiner interprets the wild card "*" as the string of characters 
containing a place holder for each parameter.. .that is not statically defined, since the 
wild card "*" represents the character/s and places/positions of a 
dynamic/changing/non-static rule), wherein the place-holder is relevant to the rule (Col. 
4, lines 15 - 21 , wherein as shown in Fig. 3, for example: "*" corresponds to "DEST. 
HOST" of rule 20, Coss). 

Regarding Claim 18, Coss discloses a method of processing network data, 
comprising: 
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storing as entries in a first table, first primary identifiers, each with one or more 
associated parameterized rules (Fig. 3, Col. 3 and 4, lines 66 - 67 and 1 ; respectively, 
Coss); 

storing as entries in a second table, secondary identifiers, each with one or more 
associated second primary identifiers and one or more associated parameter values 
(Fig. 3 and 4, Col. 5, lines 51 - 57; wherein the rule no. in table of Fig. 4 corresponds to 
rule no. in table of Fig. 5, Coss); 

receiving data comprising at least one new parameter value (Col. 6, lines 30 - 
34, Coss); 

determining at least one associable second primary identifier which said new 
parameter value can be associated with (Col. 6, lines 41 - 44, Coss); 

storing said new parameter value in association with said associable second 
primary identifier (Col. 6, 44 - 47, Coss); 

determining current associated parameter values and corresponding 
parameterized rules for each of said secondary identifiers (Col. 6, lines 50 - 53, Coss); 

making a combination said current associated parameter values and said 
corresponding parameterized rules for directing said network data processing module 
(Col. 6, lines 50 - 58, Coss); and 

communicating said combination to a network data processing module so as to 
direct the management of network data by said network data processing module (Col. 6, 
lines 50-58, Coss); 
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wherein each of said associated parameterized rules is specified according to a 
string of characters containing a place-holder for each parameter of said parameterized 
rule that is not statically defined (Col. 4, lines 15 - 21 , "When a category provided for in 
the rule table is irrelevant in a certain rule, the corresponding table entry can be marked 
as a 'wild card.' This can apply to any one or any combination of categories. In Fig. 3, 
and elsewhere, an asterisk (*) is used for wild card entries. 'FTP' stands for 'file transfer 
protocol'", also note that a "wild card" is a symbol that can represent one or a set of 
other characters. A common wild-card character is the asterisk (*). For example, the 
disk command DELETE L* would cause deletion of files LONG, LAME, LIMB. The 
examiner interprets the wild card "*" as the string of characters containing a place 
holder for each parameter... that is not statically defined, since the wild card "*" 
represents the character/s and places/positions of a dynamic/changing/non-static rule), 
wherein the place-holder is relevant to the rule (Col. 4, lines 15-21, wherein as shown 
in Fig. 3, for example: "*" corresponds to "DEST. HOST" of rule 20, Coss). 

Claim Rejections - 35 USC § 103 

9. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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10. Claims 1- 14 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Coss et al. (Coss hereinafter) (US Patent No. 6,170,012 B1) in view of Bellinger et al. 
(Bellinger hereinafter) (US 2002/0169858). 

Regarding Claim 1 , Coss discloses a data processing device, including 
computer-executable instructions stored on a computer-readable medium, installed in a 
data processing server, said device comprising: 

a first table storing sets of at least one primary rule, called "primary metarules", in 
a parameterizable form and in corresponding relationship to primary identifiers and (Fig. 
Fig. 3, Col. 2 and 4, lines 37 - 41 and 1 - 6; Coss discloses dynamic rules which 
values, such as, host, can be modified; which corresponds to a parameterizable form as 
claimed; respectively, Coss); and 

management means which is coupled to control means of said data processing 
server and, on receipt of auxiliary data representing operating parameters, the auxiliary 
data delivered by said control means after reception by the data processing server of 
secondary data (Col. 5, lines 35 - 41 , Coss), selects at least one of the primary 
identifiers in the first table (Col. 5, lines 43 - 46, Coss) and associates said auxiliary 
data therewith so as to define said dedicated processes of said control means (Col. 4 
and 5, lines 3-6 and 35 - 40; respectively, Coss); 

wherein said control means applies said defined dedicated processes to process 
primary data received by said data processing server, said data processing server 
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transmitting said primary data based on said processing (Col. 5, lines 43-46, Coss); 
and 

wherein said at least one primary metarule is specified according to a string of 
characters containing a place-holder for each parameter of said primary metarule that is 
not statically defined (Col. 4, lines 15 - 21 , "When a category provided for in the rule 
table is irrelevant in a certain rule, the corresponding table entry can be marked as a 
'wild card.' This can apply to any one or any combination of categories. In Fig. 3, and 
elsewhere, an asterisk (*) is used for wild card entries. 'FTP' stands for 'file transfer 
protocol'", also note that a "wild card" is a symbol that can represent one or a set of 
other characters. A common wild-card character is the asterisk (*). For example, the 
disk command DELETE L* would cause deletion of files LONG, LAME, LIMB. The 
examiner interprets the wild card "*" as the string of characters containing a place 
holder for each parameter... that is not statically defined, since the wild card "*" 
represents the character/s and places/positions of a dynamic/changing/non-static rule). 

However, Coss does not expressly disclose: request for reconfiguration of the 
control means. On the other hand, Bellinger discloses: on receipt of auxiliary data 
representing operating parameters that request reconfiguration of the control means, 
the auxiliary data delivery by said control means after reception by the data processing 
server of the secondary data that requires reconfiguration of the control means ([0077], 
Bellinger). It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Coss by incorporating the request for reconfiguration, in 
the same conventional manner as disclosed by Bellinger. Skilled artisan would have 
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found it motivated to use such a modification in order to provide a range of services 
suited to specific needs of end users and groups (see; [0008], Bellinger). 

Regarding Claim 2, the combination of Coss in view of Bellinger (Coss/Bellinger 
hereinafter) discloses a device, further comprising a second table accessible to said 
management means in which are stored secondary identifiers each in corresponding 
relationship to at least one selected primary identifier associated with auxiliary data (Fig. 
3 and 4, Col. 5, lines 51 - 57; wherein the rule no. in table of Fig. 4 corresponds to rule 
no. in table of Fig. 5, Coss). 

Regarding Claim 3, Coss/Bellinger discloses a device, wherein said management 
means, on receipt of said auxiliary data, determine whether the at least one selected 
primary identifiers corresponding to the type of said auxiliary data is present in the 
secondary table (Fig. 4, Col. 5, lines 43 - 47 and 51 - 53, Coss), and associate the at 
least one selected primary identifier with new auxiliary data so as to adapt said 
dedicated processes (Col. 5, lines 53 - 59, Coss). 

Regarding Claim 4, Coss/Bellinger discloses a device, wherein certain selected 
primary metarules in the second table are grouped into secondary metarules 
represented by secondary identifiers (Col. 5, lines 1 - 7, Coss). 



Application/Control Number: 1 0/51 1 ,898 Page 1 2 

Art Unit: 2162 

Regarding Claim 5, Coss/Bellinger discloses a device, wherein said management 
means comprise a multiplicity of management submodules each of which manage the 
association of auxiliary data with at least one primary or secondary metarule (Col. 4 and 
5, lines 3-6 and 35 - 40; respectively, Coss) and on receipt of said auxiliary data, to 
determine which of said management submodules corresponds thereto (Col. 5, lines 43 
- 46, Coss). 

Regarding Claim 6, Coss/Bellinger discloses a device, wherein that said 
management means are adapted, on receipt of said auxiliary data communicated by the 
server, to add, delete or modify primary or secondary metarules or auxiliary data in the 
second table associated with said primary or secondary metarules (Col. 8, lines 34 - 36 
and 41 -44, Coss). 

Regarding Claim 7, Coss/Bellinger discloses a device, wherein that said 
management means and said tables are part of a metafirewall which manages a firewall 
equipping said server (Col. 1 and 2, lines 63 - 67 and 1 - 3; respectively, Coss). 

Regarding Claim 8, Coss/Bellinger discloses a firewall comprising a device (Col. 
1 and 2, lines 63 - 67 and 1 - 3; respectively, Coss). 



Regarding Claim 9, Coss discloses a data processing method, comprising: 
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storing in a first table sets of at least one primary rule, called "primary metarules", 
in a parameterizable form and in corresponding relationship to primary identifiers (Fig. 
3, Col. 2 and 4, lines 37 - 41 and 1 - 6; Coss/Bellinger discloses dynamic rules which 
values, such as, host, can be modified; which corresponds to a parameterizable form as 
claimed; respectively, Coss); 

on receipt of auxiliary data representing operating parameters delivered by the 
server after the receipt of secondary data (Col. 5, lines 35 - 41 , Coss), selecting at least 
one of the primary identifiers in the first table (Col. 5, lines 43 - 46, Coss); 

associating said auxiliary data with said selected primary identifier so as to 
define said dedicated processes of said control means (Col. 4 and 5, lines 3-6 and 35 
- 40; respectively, Coss); and 

applying said dedicated processes based on primary rules to process primary 
data received by said data processing server, and transmitted by said data processing 
server based on said processing (Col. 5, lines 43 - 46, Coss); and 

wherein said at least one primary metarule is specified according to a string of 
characters containing a place-holder for each parameter of said primary metarule that is 
not statically defined (Col. 4, lines 15 - 21 , "When a category provided for in the rule 
table is irrelevant in a certain rule, the corresponding table entry can be marked as a 
'wild card.' This can apply to any one or any combination of categories. In Fig. 3, and 
elsewhere, an asterisk (*) is used for wild card entries. 'FTP' stands for 'file transfer 
protocol'", also note that a "wild card" is a symbol that can represent one or a set of 
other characters. A common wild-card character is the asterisk (*). For example, the 



Application/Control Number: 1 0/51 1 ,898 Page 1 4 

Art Unit: 2162 

disk command DELETE L* would cause deletion of files LONG, LAME, LIMB. The 
examiner interprets the wild card "*" as the string of characters containing a place 
holder for each parameter... that is not statically defined, since the wild card "*" 
represents the character/s and places/positions of a dynamic/changing/non-static rule). 

However, Coss does not expressly disclose: request for reconfiguration of the 
control means. On the other hand, Bellinger discloses: on receipt of auxiliary data 
representing operating parameters that request reconfiguration of the control means, 
the auxiliary data delivery by said control means after reception by the data processing 
server of the secondary data that requires reconfiguration of the control means ([0077], 
Bellinger). It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Coss by incorporating the request for reconfiguration, in 
the same conventional manner as disclosed by Bellinger. Skilled artisan would have 
found it motivated to use such a modification in order to provide a range of services 
suited to specific needs of end users and goups (see; [0008], Bellinger). 

Regarding Claim 10, Coss/Bellinger discloses a method, characterized in that, 
wherein during the preliminary step, secondary identifiers each in corresponding 
relationship to at least one selected primary identifier associated with auxiliary data are 
stored in a second table (Fig. 3 and 4, Col. 5, lines 51 - 57; wherein the rule no. in table 
of Fig. 4 corresponds to rule no. in table of Fig. 5, Coss). 
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Regarding Claim 11, Coss/Bellinger discloses a method, wherein on receipt of 
the auxiliary data, it is determined whether the at least one selected primary identifiers 
that corresponds to the type of auxiliary data is present in the second table (Fig. 4, Col. 
5, lines 43 - 47 and 51 - 53, Coss), and to associate the at least one selected primary 
identifier with new auxiliary data so as to adapt said dedicated processes (Col. 5, lines 
53 - 59, Coss). 

Regarding Claim 12, Coss/Bellinger discloses a method, wherein certain primary 
metarules in the second table are grouped into secondary metarules represented by 
secondary identifiers (Col. 5, lines 1 - 7, Coss). 

Regarding Claim 13, Coss/Bellinger discloses a method, wherein there are 
executed in parallel the selection of the primary or secondary metarules in the first table 
(Col. 5, lines 43 - 46, Coss) and the modification of the auxiliary data in the second 
table associated with the secondary identifier representing the selected primary or 
secondary metarules (Col. 8, lines 34 - 36 and 41 - 44, Coss). 

Regarding Claim 14, Coss/Bellinger discloses a method, wherein, on receipt of 
complementary data communicated by said server, primary or secondary metarules are 
added to, deleted from or modified in the second table (Col.8, lines 34 - 36 and 41 - 44, 
Coss). 
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Response to Arguments 

11. In response to applicant's argument that the references fail to show certain 
features of applicant's invention, it is noted that the features upon which applicant relies 
(i.e., "define new rules... new connection type...") are not recited in the rejected 
claim(s). Although the claims are interpreted in light of the specification, limitations from 
the specification are not read into the claims. See In re Van Geuns, 988 F.2d 1 181 , 26 
USPQ2d 1057 (Fed.Cir. 1993). 

12. Applicant's arguments that; "wherein the place-holder is relevant to the rule" have 
been fully considered but they are not persuasive. Coss does disclose: wherein the 
place-holder is relevant to the rule (Col. 4, lines 15 - 21 , wherein as shown in Fig. 3, for 
example: "*" corresponds to "DEST. HOST" of rule 20, Coss). 



Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to GIOVANNA COLAN whose telephone number is 
(571)272-2752. The examiner can normally be reached on 8:30 am - 5:00 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, John Breene can be reached on (571 ) 272-4107. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

Giovanna Colan 
Examiner 
Art Unit 2162 
August 19, 2009 

/John Breene/ 

Supervisory Patent Examiner, Art Unit 2162 



